Lucene search
K

350 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-49799

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tracing: Fix wild-memory-access in registersynthevent In registersynthevent, if setsyntheventprintfmt failed, then both traceremoveeventcall and...

7.1CVSS6.7AI score0.0017EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38233

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: powerpc64/ftrace: fix clobbered r15 during livepatching While r15 is clobbered always with...

7.8CVSS6.2AI score0.00135EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38269

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfs: exit after state insertion failure at btrfsconvertextentbit If insertstate state failed it returns an error pointer and we call extentiotreepanic which...

5.5CVSS6.3AI score0.00154EPSS
Exploits0References2
OSV
OSV
added 2025/07/25 2:16 p.m.5 views

CVE-2025-38424 perf: Fix sample vs do_exit()

In the Linux kernel, the following vulnerability has been resolved: perf: Fix sample vs doexit Baisheng Gao reported an ARM64 crash, which Mark decoded as being a synchronous external abort -- most likely due to trying to access MMIO in bad ways. The crash further shows perf trying to do a user...

5.5CVSS6.4AI score0.0017EPSS
Exploits0References13
NVD
NVD
added 2025/07/25 1:15 p.m.8 views

CVE-2025-38371

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Disable interrupts before resetting the GPU Currently, an interrupt can be triggered during a GPU reset, which can lead to GPU hangs and NULL pointer dereference in an interrupt context as shown in the following trace:...

5.5CVSS0.00161EPSS
Exploits0References10
OSV
OSV
added 2025/07/25 12:53 p.m.12 views

CVE-2025-38391 usb: typec: altmodes/displayport: do not index invalid pin_assignments

In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmodes/displayport: do not index invalid pinassignments A poorly implemented DisplayPort Alt Mode port partner can indicate that its pin assignment capabilities are greater than the maximum value, DPPINASSIGNF. In...

5.5CVSS6.1AI score0.0017EPSS
Exploits0References13
Cvelist
Cvelist
added 2025/07/14 5:59 p.m.26 views

CVE-2025-53014 ImageMagick has Heap Buffer Overflow in InterpretImageFilename

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions prior to 7.1.2-0 and 6.9.13-26 have a heap buffer overflow in the InterpretImageFilename function. The issue stems from an off-by-one error that causes out-of-bounds memory access when processi...

3.7CVSS0.00617EPSS
Exploits1References1
CVE
CVE
added 2025/07/14 5:59 p.m.67 views

CVE-2025-53014

Observed affected software/versions : ImageMagick prior to 7.1.2-0 and 6.9.13-26. heap buffer overflow in the InterpretImageFilename function due to an off-by-one error, causing out-of-bounds reads when processing format strings containing consecutive percent signs (%%). The issue is confirmed to...

9.8CVSS7.6AI score0.00617EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/11 12:0 a.m.4 views

PT-2025-31072

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a type confusion issue within the smc module related to the handling of inet sock structures. Specifically, the issue stemmed from allowing non-INET sockets to...

9.1CVSS8.3AI score0.07142EPSS
Exploits14References1880
CVE
CVE
added 2025/07/10 8:15 a.m.56 views

CVE-2025-38330

CVE-2025-38330 affects the Linux kernel, specifically a KUnit test path in firmware: cs_dsp_ctl_cache_init_multiple_offsets that could trigger an out-of-bounds read. root cause: mock_coeff_template.length_bytes used for register value allocations, later overridden to 8 bytes, causing incorrect te...

7.1CVSS6.5AI score0.00145EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/07/10 8:15 a.m.3 views

UBUNTU-CVE-2025-38292

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix invalid access to memory In ath12kdprxmsducoalesce, rxcb is fetched from skb and boolean iscontinuation is part of rxcb. Currently, after freeing the skb, the rxcb-iscontinuation accessed again which is wrong...

7.1CVSS6.2AI score0.00153EPSS
Exploits0References29
Cvelist
Cvelist
added 2025/07/04 1:37 p.m.9 views

CVE-2025-38233 powerpc64/ftrace: fix clobbered r15 during livepatching

In the Linux kernel, the following vulnerability has been resolved: powerpc64/ftrace: fix clobbered r15 during livepatching While r15 is clobbered always with PPCFTRACEOUTOFLINE, it is not restored in livepatch sequence leading to not so obvious fails like below: BUG: Unable to handle kernel data...

0.00135EPSS
Exploits0References2
CVE
CVE
added 2025/06/18 11:2 a.m.76 views

CVE-2022-50101

CVE-2022-50101 affects the Linux kernel’s fbdev vt8623fb code. The flaw arises in vt8623fb_set_par(), where a user-supplied value is used to compute screen_size. If screen_size exceeds info->screen_size, a memory write via memset_io() can trigger a supervisor-page fault (kernel crash). The rep...

7.8CVSS6.4AI score0.0022EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/06/18 11:2 a.m.4 views

CVE-2022-50099 video: fbdev: arkfb: Check the size of screen before memset_io()

In the Linux kernel, the following vulnerability has been resolved: video: fbdev: arkfb: Check the size of screen before memsetio In the function arkfbsetpar, the value of 'screensize' is calculated by the user input. If the user provides the improper value, the value of 'screensize' may larger...

7.8CVSS6AI score0.00214EPSS
Exploits0References11
CVE
CVE
added 2025/06/18 9:28 a.m.75 views

CVE-2025-38016

CVE-2025-38016 (Linux kernel, HID: bpf: abort dispatch if device destroyed) is confirmed in connected sources as a HID subsystem issue in the Linux kernel. The vulnerability stems from HID-BPF dispatch when a HID device is destroyed: after hid_bpf_destroy_device(), a cleaned-up SRCU can be access...

5.5CVSS6.7AI score0.00161EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2025/06/18 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from post-release reuse in usbudcuevent, which could lead to memory access errors...

7.8CVSS6.4AI score0.00208EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.6 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Type confusion was fixed due to a race condition when using ipcmsgsendrequest. req-handle is allocated using ksmbdacquireid&ipcida, based on idaalloc. req-handle from ksmbdipcloginrequest and FSCTLPIPETRANSCEIVE ioctl can ...

8.1CVSS6.2AI score0.00352EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 10:43 p.m.5 views

CVE-2022-28946

An issue in the component ast/parser.go of Open Policy Agent v0.39.0 causes the application to incorrectly interpret every expression, causing a Denial of Service DoS via triggering out-of-range memory access...

7.5CVSS7.3AI score0.0095EPSS
Exploits0References1
OSV
OSV
added 2025/05/20 5:15 p.m.9 views

CVE-2025-37976

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.9AI score
Exploits0References1
NVD
NVD
added 2025/05/20 4:15 p.m.10 views

CVE-2025-37944

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix invalid entry fetch in ath12kdpmonsrngprocess Currently, ath12kdpmonsrngprocess uses ath12khalsrngsrcgetnextentry to fetch the next entry from the destination ring. This is incorrect because...

7.8CVSS0.00168EPSS
Exploits0References5
Rows per page
Query Builder